RSA - Attendees drop ball on Wi-Fi security

More than half of wireless devices at the RSA conference were vulnerable to two classes of attacks

More than half of the wireless LAN devices being used at this week's RSA Conference on information security are themselves unsecured.

That means that the network security experts charged with protecting enterprise data aren't even protecting their own.

The rather startling finding is the result of two days of WLAN traffic scanning by wireless security vendor AirDefense . On the first two days of the conference, AirDefense monitors found that more than half of the wireless devices on the conference network were vulnerable to two classes of attacks.

One is the "Evil Twin" attack, in which the attacker tricks a victim into wirelessly connecting to a laptop or PDA posing as a legitimate access point or hotspot. The second class was various "Zero Day" attacks, which exploit newly found software flaws, in applications like Internet Explorer, that haven't yet been fixed by the vendor, or patched by the user.

On Day One, Tuesday, 347 of 623, or 56 percent, laptops and PDAs were vulnerable. On the second day, almost the same percentage, 57 percent, were vulnerable, but the numbers were higher: 481 of 847 devices.

In a statement, AirDefense CSO Richard Rushing said the vulnerabilities were not the fault of the conference network, which he praised as being secured "as well or better than most standard corporate networks."

On Day One of the monitoring, AirDefense found 70 devices using peer-to-peer connections by means of common SSIDs, or network names, such as "Free Internet Access" and "Linksys." On Day Two, the number rose to 87.

The monitoring found 30 devices pretending to be access points, and two of these pretending to be access points on the conference network. One of the two even had a self-sign certificate to mimic the conference authentication server. Five others were masquerading as common hotspots, with names such as "tmobile," "IBAHN" and several local hotels.

On Day One, there were 57 denial-of-service attacks, including de-authenticating clients and jamming transmissions. That jumped to 85 on Day Two.

The airwaves were being regularly and repeatedly scanned for access points by attendees using programs such as NetStumbler. Forty-five devices on the network had altered media access control addresses, apparently in an effort to hide the identity of the device and its user.

On Day Two, AirDefense reported, the tools used in the attacks were more sophisticated. Some tools were variations of the Karma program, which mimics the access point that the target laptop or PDA is probing for. One attacker had wirelessly seized eight machines and used them to launch simultaneous attacks.

Many client devices connecting to an unencrypted network disclosed a wealth of information about their corporate network, including domain, authentication server, Active Directory, user name and computer name. Leaking NetBIOS and IPX traffic information was common. According to AirDefense, attackers could (and may have) captured the corporate username and authentication hash sent by the users over the airwaves.

Join the PC World newsletter!

Error: Please check your email address.

Our Back to Business guide highlights the best products for you to boost your productivity at home, on the road, at the office, or in the classroom.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

John Cox

Network World
Show Comments

Essentials

Lexar® JumpDrive® S57 USB 3.0 flash drive

Learn more >

Microsoft L5V-00027 Sculpt Ergonomic Keyboard Desktop

Learn more >

Mobile

Lexar® JumpDrive® S45 USB 3.0 flash drive 

Learn more >

Exec

HD Pan/Tilt Wi-Fi Camera with Night Vision NC450

Learn more >

Lexar® JumpDrive® C20c USB Type-C flash drive 

Learn more >

Audio-Technica ATH-ANC70 Noise Cancelling Headphones

Learn more >

Lexar® Professional 1800x microSDHC™/microSDXC™ UHS-II cards 

Learn more >

Budget

Back To Business Guide

Click for more ›

Most Popular Reviews

Latest News Articles

Resources

PCW Evaluation Team

Azadeh Williams

HP OfficeJet Pro 8730

A smarter way to print for busy small business owners, combining speedy printing with scanning and copying, making it easier to produce high quality documents and images at a touch of a button.

Andrew Grant

HP OfficeJet Pro 8730

I've had a multifunction printer in the office going on 10 years now. It was a neat bit of kit back in the day -- print, copy, scan, fax -- when printing over WiFi felt a bit like magic. It’s seen better days though and an upgrade’s well overdue. This HP OfficeJet Pro 8730 looks like it ticks all the same boxes: print, copy, scan, and fax. (Really? Does anyone fax anything any more? I guess it's good to know the facility’s there, just in case.) Printing over WiFi is more-or- less standard these days.

Ed Dawson

HP OfficeJet Pro 8730

As a freelance writer who is always on the go, I like my technology to be both efficient and effective so I can do my job well. The HP OfficeJet Pro 8730 Inkjet Printer ticks all the boxes in terms of form factor, performance and user interface.

Michael Hargreaves

Windows 10 for Business / Dell XPS 13

I’d happily recommend this touchscreen laptop and Windows 10 as a great way to get serious work done at a desk or on the road.

Aysha Strobbe

Windows 10 / HP Spectre x360

Ultimately, I think the Windows 10 environment is excellent for me as it caters for so many different uses. The inclusion of the Xbox app is also great for when you need some downtime too!

Mark Escubio

Windows 10 / Lenovo Yoga 910

For me, the Xbox Play Anywhere is a great new feature as it allows you to play your current Xbox games with higher resolutions and better graphics without forking out extra cash for another copy. Although available titles are still scarce, but I’m sure it will grow in time.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?